|
|||
Rule General Information |
---|
Release Date: | 2021-07-01 | |
Rule Name: | Selea OCR-ANPR Camera SeleaCamera Arbitrary File Read Vulnerability | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Selea OCR-ANPR camera has arbitrary file reading vulnerability. This vulnerability is caused by an arbitrary file read vulnerability in the SeleaCamera interface. An attacker can use this vulnerability to construct a specific URL to obtain any file on the server through directory traversal. Using this vulnerability, an attacker can obtain public plaintext credentials to bypass authentication. | |
Impact: | An attacker could exploit this vulnerability to read arbitrary file,causing privacy leaks. | |
Affected OS: | Network Device | |
Reference: | ||
Solutions |
---|
Please contact the software vendor to update the software patch. |